Launchpad CVE tracker

CVE 2009-4009

Buffer overflow in PowerDNS Recursor before 3.1.7.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted packets.

Related bugs and status

CVE-2009-4009 (Candidate) is related to these bugs:

Bug #403957: Variable mismatch in /etc/init.d/pdns-recursor

		In	Importance	Status
403957	Variable mismatch in /etc/init.d/pdns-recursor	pdns-recursor (Ubuntu)	Undecided	Invalid
403957	Variable mismatch in /etc/init.d/pdns-recursor	pdns-recursor (Ubuntu Jaunty)	Undecided	Fix Released
403957	Variable mismatch in /etc/init.d/pdns-recursor	pdns-recursor (Ubuntu Karmic)	Undecided	Fix Released
403957	Variable mismatch in /etc/init.d/pdns-recursor	pdns-recursor (Ubuntu Lucid)	Undecided	Invalid
403957	Variable mismatch in /etc/init.d/pdns-recursor	pdns-recursor (Ubuntu Intrepid)	Undecided	Invalid

Bug #502987: PowerDNS Recursor Critical Security Issue - PDNS-2010-01

		In	Importance	Status
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu)	High	Fix Released
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu Hardy)	High	Won't Fix
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu Intrepid)	High	Fix Released
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu Karmic)	High	Fix Released
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu Jaunty)	High	Fix Released
502987	PowerDNS Recursor Critical Security Issue - PDNS-2010-01	pdns-recursor (Ubuntu Lucid)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-4009

References